System Hardening Analyst

For 29 years, clients in the private and public sectors have relied upon SOS International LLC (SOSi) for critical operations in the world’s most challenging environments. SOSi is privately held, was founded by its current ownership in 1989, maintains corporate headquarters in New York City, and specializes in providing logistics, construction, training, intelligence, and information technology solutions to the defense, diplomatic, intelligence and law enforcement communities.

All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

5-******-7017: System Hardening Analyst

LocationU.S. – North Carolina – Raleigh

Open Date6/15/2018

JOB DESCRIPTION

STG Inc, an affiliated company of SOS International LLC (SOSi) is seeking a professional and experienced System Hardening Analyst to join our team. The successful candidate will join a team responsible for ensuring system hardening occurs in a methodologically and repeatable process to achieve cyber resiliency in as quick an efficient manner as possible. The candidate will work with Corporate Information Security Office (CISO) team members to improve the overall Cybersecurity plans and act as a liaison and evangelist to encourage strong security practices across all projects, code development, infrastructure, and operations.
This position is located in Morrisville, North Carolina.

Responsibilities Include:
Work within the CISO team to promote best network security engineering practices supporting this network while focusing on cyber device hardening.
Disabling unwanted SUID and SGID Binaries
Ensuring operating systems are up to date, especially security patches and uses security extensions
Manages Ports, Protocols and Services on assigned systems
Investigates suspicious activity on assigned servers
Enforces secure password management practices
Identifies and disables unnecessary software or processes
Research problems and recommend solutions to improve system security posture
Drive policies and compliance in supporting the CISO.
Contribute information technology hardening knowledge in improving the security architecture
Harden information technology systems per U.S. Government and commercial industry best practices

MINIMUM REQUIREMENTS

4+ years demonstrated experience in enterprise security or related field
Bachelors Degree in Information Security or related field
Experience with cyber security development projects and programs for U.S. Government and/or commercial clients
Experience with process development and deployment
Experience with and knowledge of network, security and IT best practices
Experience with NIST-800 (Series) – specifically NIST 800-123, DoD STIGS
Familiarity with Data Encryption for secure communications
Experience removing unnecessary software on servers.
Experience with SSH Hardening
Ability to effectively communicate technical knowledge and translate to business leadership.
Ability to communicate technical knowledge effectively through writing.